Memory Management Vulnerability in Intel UEFI OobRasMmbiHandlerDriver Module
CVE-2025-20077

5.6MEDIUM

Key Information:

Vendor: Intel
Status: Intel(r) Reference Server Platforms
Vendor: CVE Published:; 12 August 2025

What is CVE-2025-20077?

The UEFI OobRasMmbiHandlerDriver module in certain Intel reference server platforms has a vulnerability due to improper memory release after use. This issue could potentially allow a privileged user with local access to cause a denial of service. By exploiting this flaw, an attacker could disrupt the functionality of the affected system through targeted memory manipulation.

Affected Version(s)

Intel(R) reference server platforms See references

References

https://intel.com/content/www/us/en/security-center/advis...

CVSS V4

Score:

5.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2025
Vulnerability Reserved
Jan 6, 2025

CVE-2025-20077 Data

JSON